RE: fuzzing NTPsec with afl

is clever! UDP, IP and Ethernet aren't changing in this domain. Fuzzing the Linux TCP/IP stack is a waste of time. - Dan Poirot, CISSP -Original Message- From: devel [mailto:devel-boun...@ntpsec.org] On Behalf Of Royce Williams Sent: Monday, November 21, 2016 5:35 PM To: Kur

RE: CII Best Practices Badging Process - NTPsec

Hello Caeley and David and welcome to the discussion, Truly some good stuff here! With a mature SDLC and leveraging highly skilled volunteers, I think NTPsec is well on the way to its badge. Being a Synopsys sales engineer (shill), I am pleased to see Coverity listed in the CII Best

Raspberry PI 3

...anyone else have an itch that needs scratching? See: http://deals.kinja.com/start-your-raspberry-pi-3-adventure-with-this-discoun te-1780104160 -Dan ___ devel mailing list devel@ntpsec.org http://lists.ntpsec.org/mailman/listinfo

RE: Draft Stratum 1 Microserver HOWTO is up

...all about the learning! Thanks for the clarification. For hobbyist use, I would guess folks would keep up with IP numbers on their own. - dan -Original Message- From: Hal Murray [mailto:hmur...@megapathdsl.net] Sent: Sunday, May 29, 2016 10:17 AM To: Dan Poirot Cc: 'Hal M

RE: Draft Stratum 1 Microserver HOWTO is up

Hey Hal, While we are in it, up to our ears, regarding setup and operation... Is there a consensus on DDNS? There are a few services which offer 'free dynamic DNS service': http://www.noip.com/ http://www.xname.org/ http://freedns.afraid.org/ ...and the delightful

RE: Reference clocks.

USB 1.1 is good enough! You got a jitter or latency problem you can't solve with 12 Mbit/sec, rock-solid on a point-to-point link? ...just don't put a USB floppy drive on the same bus! ;-) -Original Message- From: devel [mailto:devel-boun...@ntpsec.org] On Behalf Of Gary E. Miller

RE: RaspbPi HOWTO

The TI BeagleBoard had a similar issue plaguing early revisions. I seem to recall a hardware spin on one component resolved the problem. I have used both the BeagleBoard C3 and RaspPi B with Data Distribution System (real-time, UDP pub/sub messaging) when I worked at RTI. I never saw any

...and Raspberry Pi's are not all Good. Some are Evil...

Malicious twist to the 'Set your iPhone back to 1970' social engineering vuln. See: http://krebsonsecurity.com/2016/04/new-threat-can-auto-brick-apple-devices/ [From the article] EVIL HARDWARE According to Harrigan and Kelley, the hardware needed to execute this attack is little more

Some light reading from Oracle

This just in... http://blog.talosintel.com/2016/04/vulnerability-spotlight-further-ntpd_27.h tml Vulnerability Spotlight: Further NTPD Vulnerabilities As a member of the Linux Foundation ( https://www.coreinfrastructure.org/ ), Cisco is contributing to the CII effort by evaluating the

RE: Pi HOWTO

...I don't see anything like it on the Adafruit site, but back when the Pi first hit the scene and all the Real Fanboys (like me) had one, outfits were handing out LASER-cut acrylic, press-fit cases with company Marketing logos and URL's engraved! So sweet... Peel off the masking paper, arrange by

RE: Raspberry Pi HOWTO progress

Wait... So is GEM going to put together a more-better shopping list??? ...I am digging the way retro antenna! - dan -Original Message- From: devel [mailto:devel-boun...@ntpsec.org] On Behalf Of Gary E. Miller Sent: Tuesday, April 26, 2016 4:38 PM To: Eric S. Raymond Cc: devel@ntpsec.or

RE: Raspberry Pi HOWTO progress

I WANT THIS! Warming up the credit card... - dan -Original Message- From: devel [mailto:devel-boun...@ntpsec.org] On Behalf Of Eric S. Raymond Sent: Tuesday, April 26, 2016 11:00 AM To: Mark Atwood Cc: devel@ntpsec.org Subject: Re: Raspberry Pi HOWTO progress Mark Atwood : > Thank you

RE: New GPG key 0x477C7528 for secur...@ntpsec.org

Mine goes back to Spaf back when y'all were boys: Search results for '0x6e30b5c70ea4cd31' Type bits/keyID cr. time exp time key expir _ pub 768R/0EA4CD31 1995-01-18 __ uid Daniel T. Poirot s

RE: Reference clocks.

TL;DR TOTALLY distracted by this: https://gnuradio.org/redmine/projects/gnuradio/wiki/GNURadioLiveDVD http://rtlsdr.org/start https://www.reddit.com/r/RTLSDR/wiki/compatibility What is it that you CAN'T do with a USB stick these days... - dan -Original Message--

RE: on reports from Synopsys Coverity, Defensics and Protecode

Hi Mark, Happy to help. (I need to remember to kill the MS Outlook formatting...) 'Automatic bug filing' is a feature provided in response to 'aggressive' customer demand. ...they commonly set it up, try it out, hate it and then they promptly disable it. It can be done from the command line an

RE: Version bump.

...answers a lot of questions before they are even asked! Compiling the git SHA string into the code (-v) is huge too. I use that in my code and find it reliable and highly useful. - dan -Original Message- From: devel [mailto:devel-boun...@ntpsec.org] On Behalf Of Hal Murray Sent: Wed

RE: Alternatives to GPS

Shocking: http://www.newegg.com/Product/Product.aspx?Item=9SIA3EX33A2101&nm_mc=KNC-Goo gleMKP-PC&cm_mmc=KNC-GoogleMKP-PC-_-pla-_-Receivers-_-9SIA3EX33A2101&gclid=C NaS_ZeVn8sCFQERaQod9WUCJQ&gclsrc=aw.ds https://www.youtube.com/watch?v=YVEwfWvjkC0 http://www.rs-onlin

RE: recurring "standup"

...and in other news: http://www.csoonline.com/article/3027681/security/cisco-patches-authentication-denial-of-service-ntp-flaws-in-many-products.html Cisco Systems has released a new batch of security patches this week for flaws affecting a wide range of products, including for a criti